WHAT WE DO MATTERS

We have big plans for continued global growth, and we’re looking for people who are creative, flexible and dedicated to helping us build something great – something that matters.

Tenable is more than ‘just’ the creator of Nessus. Our security solutions - including our first cyber exposure platform for modern assets, Tenable.io - are transforming global vulnerability management. We’re a global team, powered by creative thinkers who are wired for action, focused on delivering results and collaborating to enable decisive actions to protect what matters most. We’re in this together - colleagues, customers and partner communities working as One Tenable.

Can you join Team Tenable? Yes you can - if you’re excited by the thought of working with over 800 colleagues, 23,000 customers and a range of revolutionary products that are shaping cybersecurity in 150 countries. Being valued for who you are as well as what you do, you can embrace the pace (we’re recognized as one of the fastest growing security product companies by SC Magazine, Red Herring, Info Securities, Deloitte and E&Y) as well as enjoy a superb rewards package (we’re seen as a Best Places to Work by Glassdoor, The Washington Post, The Baltimore Sun, The Baltimore Business Journal and Expert Marketplace). The key question is: Is This You?

We have big plans for continued global growth, and we’re looking for people who are creative, flexible and dedicated to helping us build something great – something that matters.

Senior Cloud Security Engineer

Los Angeles | California | United States

Your Role:

Tenable is looking for a Cloud Security Engineer to join our Product Security and Cloud Operations team to help keep the Tenable.io platform secure. The Cloud Security Engineer at Tenable is a hands-on role that requires a high degree of technical security expertise within the AWS ecosystem. The person is responsible for security related tasks, including the implementation and day-to-day administration of Information Security solutions, and optimizing configurations for effectiveness and to reduce false positives. Primary responsibilities include performing assessments of security architecture, making practical recommendations to reduce risks, and then help realize the change. The Engineer must have experience in prevention and remediation of security vulnerabilities within AWS using existing or new solutions. The individual in this position interacts closely with personnel from other functions in Information Security, Cloud Ops, R&D, and Product Management.

The candidate will be responsible for leading security program maturity efforts and initiatives in cloud operations. The candidate is responsible for working with the Product and Information Security team to help establish and maintain cloud security processes and ensure that security issues are identified and addressed. The candidate is responsible for producing metrics to measure the effectiveness of the program. The candidate will also be working with the Cloud Ops/DevOps teams and other business units on projects.

Your Opportunity:

  • Assess, design, implement, automate, and document security processes and solutions leveraging Amazon Web Service (AWS) and other third-parties
  • Design architecture, methods, and controls required to meet security, compliance, and audit requirements
  • Proactively stay current with developments in relevant technologies
  • Create and share unique ways to solve challenges with others
  • Deploy security solutions in cloud environments
  • In-depth knowledge of VPCs, Security Groups, and ACLs
  • Monitor system logs, SIEM tools and network traffic for unusual or suspicious activity
  • Must have experience extracting pertinent security data from SIEM solutions and AWS audit, logs, and reports
  • Investigate and resolve security violations by providing postmortem analysis to illuminate the issue, and identify causes, possible solutions, and preventative measures
  • Develop procedures to automate security tasks during code builds and deployments
  • Develop program quality metrics as both program performance indicators and enterprise risk indicators
  • Respond to and, when appropriate, resolve or escalate security incidents
  • Report unresolved security exposures, misuse of resources, and noncompliance situations using defined escalation processes.
  • Assist and train team members in the use of cloud security tools and the resolution of security issues
  • Develop and maintain documentation for security systems and procedures
  • Collaborate with the Ops team to build infrastructure and servers on AWS
  • Mentor Cloud Engineers

What you'll need:

  • Minimum 2 years of experience as a Cloud Security Engineer
  • Solid understanding of Amazon Web Services (AWS) including VPC, ELB, IAM, KMS, EC2, Config, CloudTrail, CloudFormation, Lambda, and others
  • Knowledge of network based, system level, and application layer attacks and mitigation methods
  • Knowledge of technical security control environments and compliance frameworks including CSA CCM, ISO 27017
  • Experience in DevOps environments and maintaining security in CI/CD processes
  • Experience with the development, deployment, and automation of security solutions in an enterprise cloud based environment
  • Experience with a broad range of security technologies including, SAST, DLP, IDS/IPS, IAM, Certificate Management, etc
  • Experience working with container technology including Docker and Kubernetes
  • Knowledge of AWS automation strategies and tools
  • Strong knowledge of technology and security topics including network and application security, infrastructure hardening, security baselines, web server, and database security
  • Ability to clearly and effectively communicate concerns, issues to other teams
  • Experience in developing, documenting, and maintaining security procedures
  • Proficient in AWS CLI, Bash, and Python

And ideally:

  • Bachelor's Degree in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience
  • Any recognized security and cloud specific certifications, e.g., CCSP, SSCP, CISSP, CCSK
  • Knowledge of BC & DRP programs including risk assessment, BIA, remediation, and staging exercises
  • Working proficiency with work tracking systems such as JIRA and project management solutions
  • Understanding of FEDRAMP, SSAE16 SOC 2, PCI DSS

We’re committed to promoting Equal Employment Opportunity (EEO) at Tenable - through all equal employment opportunity laws and regulations at the international, federal, state and local levels.

Apply for this position

Sign in with LinkedIn
Autofill my information with LinkedIn

Not ?

Thank you

People like you also viewed

Cloud Security Engineer - DevSecOps

Columbia Maryland United States Columbia, Maryland, United States Product Management Research & Development
Your Role:Tenable is looking for a Cloud Security Engineer to join our Product Security and Cloud Operations team to help keep the Tenable.io platform secure. The Cloud Security Engineer at Tenable is a hands-on role that requires a high degree of...

Sr. Software Engineer - Full Stack

San Francisco California United States San Francisco, California, United States Sensors Research & Development
Your Role:Tenable is looking for a Senior Software Engineer to join the Nessus Network Monitor (NNM) Engineering team to develop and deliver a new product. This is an opportunity for high impact and to be one of the early engineers responsible in ...

Sr. Software Engineer - C/C++

San Francisco California United States San Francisco, California, United States Research Research & Development
Your Role:Tenable is looking for a Senior C/C++ Software Engineer to join the Nessus Engine development team. The Nessus engine is the core of the Tenable network security product line, enabling organizations to address the ever-evolving challenge...

Software Engineer - Java

San Francisco California United States San Francisco, California, United States Engineering Research & Development
Your Role:Tenable is looking for a Java Software Engineer to join the Automation Engineering team.  As a member of the Automation Engineering team, you will support the development efforts across our product engineering teams designing, developing...

Integration Consultant

San Francisco California United States San Francisco, California, United States Professional Services Professional Services
Your Role:Tenable is looking for an Integration Consultant to join our Professional Services team working with our customers to help them push or pull information from Tenable’s products with other 3rd party products within their environment. Exam...

Principal Software Engineer - Java, AWS, Kubernetes

Columbia Maryland United States Columbia, Maryland, United States Cloud Services Research & Development
Your Role:As a Principal Software Engineer at Tenable, you play a key role in the delivery of highly reliable, scalable, and maintainable systems. You will drive projects end-to- end, collaborating on product definitions with Product Managers, arc...

Alert me about jobs like this

Sign in with LinkedIn
Autofill my information with LinkedIn

Not ?

Thank you!

Apply for this position.

Sign in with LinkedIn
Autofill my information with LinkedIn

Not ?

Thank you

We give the power to every member of the team when we invite all developers, engineers and researchers to our own internal developer off site hackathon, where they compete to create the next great thing – a functional prototype, related to our technology, that makes our operations better.

Your ideas may become a reality – and even change the future of security.

People, Person, Computer, Electronics, LCD Screen, Laptop, Pc, Classroom
People, Person, Leisure Activities